fix XMSS heap hint use

JacobBarthelmeh · JacobBarthelmeh · commit 66c3130d4a55 · 2026-04-16T16:19:02.000-06:00
diff --git a/wolfcrypt/src/wc_xmss.c b/wolfcrypt/src/wc_xmss.c
@@ -124,9 +124,10 @@ static void wc_xmss_digest_free(XmssState* state)
  * @return  Other negative when digest algorithm initialization failed.
  */
 static WC_INLINE int wc_xmss_state_init(XmssState* state,
-    const XmssParams* params)
+    const XmssParams* params, void* heap)
 {
     state->params = params;
+    state->heap = heap;
     state->ret = 0;
     return wc_xmss_digest_init(state);
 }
@@ -681,7 +682,7 @@ static int wc_xmsskey_alloc_sk(XmssKey* key)
     }
     if (ret == 0) {
         /* Allocate a buffer to hold secret key. */
-        key->sk = (unsigned char *)XMALLOC(key->sk_len, NULL,
+        key->sk = (unsigned char *)XMALLOC(key->sk_len, key->heap,
             DYNAMIC_TYPE_TMP_BUFFER);
         if (key->sk == NULL) {
             WOLFSSL_MSG("error: malloc XMSS key->sk failed");
@@ -733,12 +734,12 @@ static WC_INLINE int wc_xmsskey_signupdate(XmssKey* key, byte* sig,
     if (ret == 0) {
         WC_DECLARE_VAR(state, XmssState, 1, 0);
 
-        WC_ALLOC_VAR_EX(state, XmssState, 1, NULL, DYNAMIC_TYPE_TMP_BUFFER,
-            ret=MEMORY_E);
+        WC_ALLOC_VAR_EX(state, XmssState, 1, key->heap,
+            DYNAMIC_TYPE_TMP_BUFFER, ret=MEMORY_E);
         if (WC_VAR_OK(state))
         {
             /* Initialize state for use in signing. */
-            ret = wc_xmss_state_init(state, key->params);
+            ret = wc_xmss_state_init(state, key->params, key->heap);
             if (ret == 0) {
                 /* Read was good. Now sign and update the secret key in memory.
                  */
@@ -766,7 +767,7 @@ static WC_INLINE int wc_xmsskey_signupdate(XmssKey* key, byte* sig,
                 /* Free state after use. */
                 wc_xmss_state_free(state);
             }
-            WC_FREE_VAR_EX(state, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+            WC_FREE_VAR_EX(state, key->heap, DYNAMIC_TYPE_TMP_BUFFER);
         }
     }
 
@@ -814,7 +815,6 @@ int wc_XmssKey_Init(XmssKey* key, void* heap, int devId)
 {
     int ret = 0;
 
-    (void) heap;
     (void) devId;
 
     /* Validate parameters. */
@@ -825,6 +825,7 @@ int wc_XmssKey_Init(XmssKey* key, void* heap, int devId)
     if (ret == 0) {
         /* Zeroize key and set state to initialized. */
         ForceZero(key, sizeof(XmssKey));
+        key->heap = heap;
         key->state = WC_XMSS_STATE_INITED;
     }
 
@@ -906,7 +907,7 @@ void wc_XmssKey_Free(XmssKey* key)
         if (key->sk != NULL) {
             /* Zeroize private key. */
             ForceZero(key->sk, key->sk_len);
-            XFREE(key->sk, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+            XFREE(key->sk, key->heap, DYNAMIC_TYPE_TMP_BUFFER);
             key->sk = NULL;
             key->sk_len = 0;
         }
@@ -1078,7 +1079,7 @@ int wc_XmssKey_MakeKey(XmssKey* key, WC_RNG* rng)
     }
 #ifdef WOLFSSL_SMALL_STACK
     if (ret == 0) {
-        seed = (unsigned char*)XMALLOC(3 * key->params->n, NULL,
+        seed = (unsigned char*)XMALLOC(3 * key->params->n, key->heap,
             DYNAMIC_TYPE_TMP_BUFFER);
         if (seed == NULL) {
             ret = MEMORY_E;
@@ -1094,12 +1095,12 @@ int wc_XmssKey_MakeKey(XmssKey* key, WC_RNG* rng)
     if (ret == 0) {
         WC_DECLARE_VAR(state, XmssState, 1, 0);
 
-        WC_ALLOC_VAR_EX(state, XmssState, 1, NULL, DYNAMIC_TYPE_TMP_BUFFER,
-            ret=MEMORY_E);
+        WC_ALLOC_VAR_EX(state, XmssState, 1, key->heap,
+            DYNAMIC_TYPE_TMP_BUFFER, ret=MEMORY_E);
         if (WC_VAR_OK(state))
         {
             /* Initialize state for use in key generation. */
-            ret = wc_xmss_state_init(state, key->params);
+            ret = wc_xmss_state_init(state, key->params, key->heap);
             if (ret == 0) {
                 /* Finally make the private/public key pair. Immediately write
                  * it to NV storage and then clear from memory. */
@@ -1120,7 +1121,7 @@ int wc_XmssKey_MakeKey(XmssKey* key, WC_RNG* rng)
                 /* Free state after use. */
                 wc_xmss_state_free(state);
             }
-            WC_FREE_VAR_EX(state, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+            WC_FREE_VAR_EX(state, key->heap, DYNAMIC_TYPE_TMP_BUFFER);
         }
     }
 
@@ -1141,7 +1142,7 @@ int wc_XmssKey_MakeKey(XmssKey* key, WC_RNG* rng)
         key->state = WC_XMSS_STATE_OK;
     }
 
-    WC_FREE_VAR_EX(seed, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+    WC_FREE_VAR_EX(seed, key->heap, DYNAMIC_TYPE_TMP_BUFFER);
     return ret;
 }
 
@@ -1618,19 +1619,19 @@ int wc_XmssKey_Verify(XmssKey* key, const byte* sig, word32 sigLen,
     if (ret == 0) {
         WC_DECLARE_VAR(state, XmssState, 1, 0);
 
-        WC_ALLOC_VAR_EX(state, XmssState, 1, NULL, DYNAMIC_TYPE_TMP_BUFFER,
-            ret=MEMORY_E);
+        WC_ALLOC_VAR_EX(state, XmssState, 1, key->heap,
+            DYNAMIC_TYPE_TMP_BUFFER, ret=MEMORY_E);
         if (WC_VAR_OK(state))
         {
             /* Initialize state for use in verification. */
-            ret = wc_xmss_state_init(state, key->params);
+            ret = wc_xmss_state_init(state, key->params, key->heap);
             if (ret == 0) {
                 /* Verify using either XMSS^MT function as it works for both. */
                 ret = wc_xmssmt_verify(state, m, mLen, sig, key->pk);
                 /* Free state after use. */
                 wc_xmss_state_free(state);
             }
-            WC_FREE_VAR_EX(state, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+            WC_FREE_VAR_EX(state, key->heap, DYNAMIC_TYPE_TMP_BUFFER);
         }
     }
 
diff --git a/wolfcrypt/src/wc_xmss_impl.c b/wolfcrypt/src/wc_xmss_impl.c
@@ -2634,14 +2634,15 @@ static void wc_xmss_bds_state_treehash_set(BdsState* bds, int i,
  * @return  0 on success.
  * @return  MEMORY_E on dynamic memory allocation failure.
  */
-static int wc_xmss_bds_state_alloc(const XmssParams* params, BdsState** bds)
+static int wc_xmss_bds_state_alloc(const XmssParams* params, BdsState** bds,
+    void* heap)
 {
     const word8 cnt = 2 * params->d - 1;
     int ret = 0;
 
     if (*bds == NULL) {
         /* Allocate memory for BDS states. */
-        *bds = (BdsState*)XMALLOC(sizeof(BdsState) * cnt, NULL,
+        *bds = (BdsState*)XMALLOC(sizeof(BdsState) * cnt, heap,
             DYNAMIC_TYPE_TMP_BUFFER);
         if (*bds == NULL) {
             ret = MEMORY_E;
@@ -2657,11 +2658,12 @@ static int wc_xmss_bds_state_alloc(const XmssParams* params, BdsState** bds)
 /* Dispose of allocated memory associated with BDS state.
  *
  * @param [in] bds    BDS state.
+ * @param [in] heap   Dynamic memory hint.
  */
-static void wc_xmss_bds_state_free(BdsState* bds)
+static void wc_xmss_bds_state_free(BdsState* bds, void* heap)
 {
     /* BDS states was allocated - must free. */
-    XFREE(bds, NULL, DYNAMIC_TYPE_TMP_BUFFER);
+    XFREE(bds, heap, DYNAMIC_TYPE_TMP_BUFFER);
 }
 
 /* Load the BDS state from the secret/private key.
@@ -3315,7 +3317,7 @@ int wc_xmss_keygen(XmssState* state, const unsigned char* seed,
 
 #ifdef WOLFSSL_SMALL_STACK
     /* Allocate memory for tree hash instances and put in BDS state. */
-    ret = wc_xmss_bds_state_alloc(params, &bds);
+    ret = wc_xmss_bds_state_alloc(params, &bds, state->heap);
     if (ret == 0)
 #endif
     {
@@ -3361,7 +3363,7 @@ int wc_xmss_keygen(XmssState* state, const unsigned char* seed,
 
 #ifdef WOLFSSL_SMALL_STACK
     /* Dispose of allocated data of BDS states. */
-    wc_xmss_bds_state_free(bds);
+    wc_xmss_bds_state_free(bds, state->heap);
 #endif
     return ret;
 #else
@@ -3426,7 +3428,7 @@ int wc_xmss_sign(XmssState* state, const unsigned char* m, word32 mlen,
 
 #ifdef WOLFSSL_SMALL_STACK
     /* Allocate memory for tree hash instances and put in BDS state. */
-    ret = wc_xmss_bds_state_alloc(params, &bds);
+    ret = wc_xmss_bds_state_alloc(params, &bds, state->heap);
     if (ret == 0)
 #endif
     {
@@ -3515,7 +3517,7 @@ int wc_xmss_sign(XmssState* state, const unsigned char* m, word32 mlen,
 
 #ifdef WOLFSSL_SMALL_STACK
     /* Dispose of allocated data of BDS states. */
-    wc_xmss_bds_state_free(bds);
+    wc_xmss_bds_state_free(bds, state->heap);
 #endif
     return ret;
 #else
@@ -3599,7 +3601,7 @@ int wc_xmssmt_keygen(XmssState* state, const unsigned char* seed,
     BdsState* bds = NULL;
 
     /* Allocate memory for BDS states and tree hash instances. */
-    ret = wc_xmss_bds_state_alloc(params, &bds);
+    ret = wc_xmss_bds_state_alloc(params, &bds, state->heap);
     if (ret == 0) {
         /* Load the BDS state from secret/private key. */
         ret = wc_xmss_bds_state_load(state, sk, bds, &wots_sigs);
@@ -3655,7 +3657,7 @@ int wc_xmssmt_keygen(XmssState* state, const unsigned char* seed,
     }
 
     /* Dispose of allocated data of BDS states. */
-    wc_xmss_bds_state_free(bds);
+    wc_xmss_bds_state_free(bds, state->heap);
     return ret;
 }
 
@@ -4029,7 +4031,7 @@ int wc_xmssmt_sign(XmssState* state, const unsigned char* m, word32 mlen,
     BdsState* bds = NULL;
 
     /* Allocate memory for BDS states and tree hash instances. */
-    ret = wc_xmss_bds_state_alloc(params, &bds);
+    ret = wc_xmss_bds_state_alloc(params, &bds, state->heap);
     if (ret == 0) {
         /* Load the BDS state from secret/private key. */
         ret = wc_xmss_bds_state_load(state, sk, bds, &wots_sigs);
@@ -4069,7 +4071,7 @@ int wc_xmssmt_sign(XmssState* state, const unsigned char* m, word32 mlen,
     }
 
     /* Dispose of allocated data of BDS states. */
-    wc_xmss_bds_state_free(bds);
+    wc_xmss_bds_state_free(bds, state->heap);
     return ret;
 }
 
diff --git a/wolfssl/wolfcrypt/wc_xmss.h b/wolfssl/wolfcrypt/wc_xmss.h
@@ -226,12 +226,15 @@ struct XmssKey {
     /* Context arg passed to callbacks. */
     void*                context;
 #endif /* ifndef WOLFSSL_XMSS_VERIFY_ONLY */
+    /* Dynamic memory hint. */
+    void*                heap;
     /* State of key. */
     enum wc_XmssState    state;
 };
 
 typedef struct XmssState {
     const XmssParams* params;
+    void* heap;
 
     /* Digest is assumed to be at the end. */
     union {
